Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
Home
Discussion GroupsWindows Server 2003Windows 2000Windows NTSmall Business ServerVirtual ServerExchange ServerIISHost Integration ServerISA ServerSMSWSUSMOMWindows Media ServerSecurityCertification
Related Topics
SQL ServerMS WindowsMS OfficePC HardwareMore Topics ...
Windows Server Forum / IIS / FTP / June 2006

Tip: Looking for answers? Try searching our database.

FTP User Isolation

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Compatibltd - 16 Jun 2006 09:03 GMT
Dear All,
However, my major interest ; implementing FTP user isolation did not work
well  for me.
On the Microsoft FTP user creation wizard:
1.The first option when selected ----- works.
2.My major interest The second option when selected works but exposes my
password whenever i try to download a file using my account from the FTP SITE.
3.The third option was more of a confusion to me as I was unable to get it
working.
Pls assist.
Reply to this Message
Robin Walker [MVP] - 16 Jun 2006 11:03 GMT
> However, my major interest ; implementing FTP user isolation did not
> work well  for me.
[quoted text clipped - 5 lines]
> 3.The third option was more of a confusion to me as I was unable to
> get it working.

I don't know what you mean by "first option", "second option", "third
option" - please be more explicit.

Exposure of passwords is a built-in weakness of the FTP protocol.  If you do
not wish to expose your password in plain text, then you should not be using
the FTP protocol at all.  Or you can wrap the FTP protocol inside an SSL
wrapper to secure the password transaction.  That requires third-party
add-ons.

Signature

Robin Walker [MVP Networking]
rdhw@cam.ac.uk

Reply to this Message
Bernard Cheah [MVP] - 18 Jun 2006 06:32 GMT
I think the OP meant the 3 isolation modes...
Refer -
Hosting Multiple FTP Sites with FTP User Isolation (IIS 6.0)
http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/b63de
8ef-e3c5-456d-a8ca-7af4198819d4.mspx?mfr=true

Signature

Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/

>> However, my major interest ; implementing FTP user isolation did not
>> work well  for me.
[quoted text clipped - 14 lines]
> SSL wrapper to secure the password transaction.  That requires third-party
> add-ons.
Reply to this Message
Bernard Cheah [MVP] - 18 Jun 2006 06:35 GMT
Which option you interested?
the first one is default mode, behave like IIS 5
2nd one isolate using standalone or domain account, whereby user will be
lock down at the root folder
3rd option integrated with AD environment..... similar to option 2 with more
features.

Signature

Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/

> Dear All,
> However, my major interest ; implementing FTP user isolation did not work
[quoted text clipped - 7 lines]
> working.
> Pls assist.
Reply to this Message
Compatibltd - 19 Jun 2006 13:06 GMT
Thanks everyone for your response.
Hi Benard Cheah,
My motive is to use the 2nd or 3rd option as long as my password is not
exposed when I download a file containd in the FTP site.
Thanks.

> Dear All,
> However, my major interest ; implementing FTP user isolation did not work
[quoted text clipped - 6 lines]
> working.
> Pls assist.
Reply to this Message
Bernard Cheah [MVP] - 20 Jun 2006 07:01 GMT
IIS FTP work in plain text mode, so you need to secure the communication via
vpn or ipsec.
or you get a third party ftp server which supporft ftps.

Signature

Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/

> Thanks everyone for your response.
> Hi Benard Cheah,
[quoted text clipped - 14 lines]
>> working.
>> Pls assist.
Reply to this Message
Compatibltd - 19 Jun 2006 13:29 GMT
Dear Robin Walker,
Can I get the third party software free via the web and what are the steps I
need to take to wrap it in SSL.
Response Pls.

> Dear All,
> However, my major interest ; implementing FTP user isolation did not work
[quoted text clipped - 6 lines]
> working.
> Pls assist.
Reply to this Message
Compatibltd - 20 Jun 2006 10:56 GMT
Thanks once again for your support.
Pls do you have a document on how to use IPSEC to secure communication in FTP.
Regards,

> Dear All,
> However, my major interest ; implementing FTP user isolation did not work
[quoted text clipped - 6 lines]
> working.
> Pls assist.
Reply to this Message
Bernard Cheah [MVP] - 21 Jun 2006 08:46 GMT
Take a look at the bottom of this KB
Information About the IIS File Transmission Protocol (FTP) Service
http://support.microsoft.com/?id=283679

I'm have not try IPSec, so good luck.
Signature

Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/

> Thanks once again for your support.
> Pls do you have a document on how to use IPSEC to secure communication in
[quoted text clipped - 13 lines]
>> working.
>> Pls assist.
Reply to this Message
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2010 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.